Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation resources documentation contact  
subscriber area subscriber area
free access free access
Vigil@nce describes vulnerabilities impacting your systems, and offers solutions to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerability
vulnerability note CVE-2010-0409
GNOME: buffer overflow of gmime

Synthesis of the vulnerability
An attacker can use long data, in order to generate an overflow when they are encoded with UUencode by gmime.
Severity: 2/4.
Consequences: user access/rights, denial of service of client.
Provenance: document.
Means of attack: no proof of concept, no attack.
Ability of attacker: expert (4/4).
Confidence: confirmed by the editor (5/5).
Diffusion of the vulnerable configuration: high (3/3).
Creation date: 05/02/2010.

Impacted products

Description of the vulnerability
The GNOME gmime library handles various MIME sections encodings:
 - quoted printable
 - base64
 - UUencode

The GMIME_UUENCODE_LEN() macro defines the size of data encoded by UUencode. However, the value returned by this macro is too short of two bytes.

An attacker can therefore use long data, in order to generate an overflow when they are encoded with UUencode by gmime, leading to a denial of service and possibly to code execution.

Characteristics
Title: GNOME: buffer overflow of gmime
Identifiers: BID-38078, CVE-2010-0409, FEDORA-2010-1429, FEDORA-2010-1484, VIGILANCE-VUL-9409.
Url: https://vigilance.fr/tree/1/9409

Information sources
Publications and announces

Solutions for this vulnerability
Patch or workaround



















France Télécom Copyright 1999-2010 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française